On Tue, 18 Oct 2005, Serassio Guido wrote:
>> And why they don't implement Negotiate for proxy connections completely
>> beats me. Big mystery. How does MSIE authenticate with ISA server as a
>> proxy in a pure AD environment? Is that even possible?
>
> It uses NTLM ....
And if the AD has NTLM support disabled? Still using NTLM or just failing?
> Just for an example: when using Windows Cluster, the authentication against a
> cluster virtual node can be NTLM only.
So in other words Microsoft is not yet ready to run MSAD in a pure native
Kerberos mode, not even if all servers and clients run the latest greatest
versions of their OS.
Regards
Henrik
Received on Tue Oct 18 2005 - 08:34:59 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Nov 01 2005 - 12:00:07 MST